$ rpki-client -vvf rpki.apnic.net/member_repository/A919F450/B98171DA534611EC9B90A47BC4F9AE02/DDE2BB7C534811EC8FFBDB7CC4F9AE02.roa File: DDE2BB7C534811EC8FFBDB7CC4F9AE02.roa (raw, json) Hash identifier: slO3SgtQuiDWcOCjvYcEnrm6hXiEqzIX3DucaCnFZzc= Subject key identifier: 5D:AE:87:1D:34:0A:A3:07:5F:AA:B2:2A:C1:70:17:B4:37:31:A3:7F Certificate issuer: /CN=A919F450/serialNumber=9CDF8CE90BF79F8C148D1F761F994D821B249C71 Certificate serial: 030E Authority key identifier: 9C:DF:8C:E9:0B:F7:9F:8C:14:8D:1F:76:1F:99:4D:82:1B:24:9C:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nN-M6Qv3n4wUjR92H5lNghsknHE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F450/B98171DA534611EC9B90A47BC4F9AE02/DDE2BB7C534811EC8FFBDB7CC4F9AE02.roa Signing time: Sun 27 Aug 2023 01:22:32 +0000 ROA not before: Sun 27 Aug 2023 01:22:32 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 134596 IP address blocks: 103.121.28.0/23 maxlen: 23 103.121.28.0/24 maxlen: 24 103.121.29.0/24 maxlen: 24 103.121.30.0/24 maxlen: 24 103.121.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F450/B98171DA534611EC9B90A47BC4F9AE02/nN-M6Qv3n4wUjR92H5lNghsknHE.crl rsync://rpki.apnic.net/member_repository/A919F450/B98171DA534611EC9B90A47BC4F9AE02/nN-M6Qv3n4wUjR92H5lNghsknHE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nN-M6Qv3n4wUjR92H5lNghsknHE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:46:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 782 (0x30e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F450/serialNumber=9CDF8CE90BF79F8C148D1F761F994D821B249C71 Validity Not Before: Aug 27 01:22:32 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64eaa558-a620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:8f:bd:6b:9b:80:a1:58:ac:41:19:88:c3:0c: 92:c5:53:79:28:cd:79:a1:59:0f:65:2c:2b:53:94: 75:e8:ea:e6:49:52:82:d5:a6:dd:3c:0d:5e:2e:3c: af:11:2b:93:bf:dc:62:8f:55:32:c2:b7:e1:4e:ed: 64:00:4f:ab:eb:6c:5f:f0:6c:8a:55:15:86:6a:ef: 1a:2f:0f:1d:ee:c8:a9:b3:a7:44:08:26:e7:77:ae: ce:d8:3b:bf:11:3a:32:e5:d3:0b:dc:b7:2e:07:4f: 0e:f3:c9:74:bc:30:26:e2:58:39:da:f5:4b:d2:15: ee:6d:8a:93:19:cc:5b:70:9c:e6:6d:a9:81:27:4e: 0e:ef:a3:25:dc:56:33:e6:d4:9a:cb:8d:b8:9b:f5: 7e:45:08:0f:05:8e:1c:04:1a:c5:e1:c5:f1:bf:6b: b9:6a:75:36:6b:17:60:a9:8e:b2:4e:aa:73:ac:9f: ff:d3:e4:2c:33:6e:dc:e5:14:6a:ab:11:92:4e:f0: c8:49:70:e1:90:66:50:98:35:43:d8:9f:8b:56:f3: f2:8d:8e:4a:c2:0a:1d:a3:d9:a8:b4:b9:78:88:f0: 5d:06:36:34:7e:2e:70:af:c7:11:a8:6d:87:74:60: 0c:fb:d2:d5:fc:51:9d:0d:0d:3e:c0:a1:aa:97:25: d7:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:AE:87:1D:34:0A:A3:07:5F:AA:B2:2A:C1:70:17:B4:37:31:A3:7F X509v3 Authority Key Identifier: keyid:9C:DF:8C:E9:0B:F7:9F:8C:14:8D:1F:76:1F:99:4D:82:1B:24:9C:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F450/B98171DA534611EC9B90A47BC4F9AE02/nN-M6Qv3n4wUjR92H5lNghsknHE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nN-M6Qv3n4wUjR92H5lNghsknHE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F450/B98171DA534611EC9B90A47BC4F9AE02/DDE2BB7C534811EC8FFBDB7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.28.0/22 Signature Algorithm: sha256WithRSAEncryption 55:35:54:ce:d3:10:c0:1a:2c:a5:fa:7b:ff:38:43:f8:47:b1: fd:65:b4:3d:b2:ce:91:fb:d1:06:49:5c:c6:95:17:14:f3:b4: c7:85:57:39:6c:28:32:c6:e6:7e:3c:a6:2d:79:14:fe:18:cc: 2e:85:71:b1:ce:fb:e6:47:73:c8:bf:17:9f:83:2e:11:3c:da: 0d:88:2c:df:a4:0b:5a:e0:83:f7:50:1a:bf:d6:17:44:27:83: 5c:85:73:62:88:54:1c:bf:28:67:0c:c4:cc:50:d8:4f:4f:59: 8f:64:8b:f1:79:44:82:79:35:a3:1a:dd:47:c7:dc:e2:49:74: 3c:21:ab:c6:25:15:cb:4f:9e:ca:23:4b:33:89:6e:58:73:a6: c6:2c:2d:b3:fc:14:42:21:5e:f0:05:5d:09:ff:87:d5:32:8f: d2:5b:ed:4a:e4:bd:bd:9d:17:3f:c9:74:c7:ac:d4:fb:4f:e9: 7b:3d:7e:01:4d:83:8e:7c:3d:16:b6:f5:95:16:4e:65:63:6a: cb:c5:14:c4:f5:27:7c:34:86:64:18:63:e3:2b:b0:62:5f:0d: 3b:3b:13:a3:b7:9c:65:a1:c0:13:20:07:43:28:95:9f:42:e7: 62:21:f9:6d:0c:f1:f1:62:a5:3b:aa:98:b5:eb:6a:76:97:18: fe:ce:c5:2d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAw4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUY0NTAxMTAvBgNVBAUTKDlDREY4Q0U5MEJGNzlGOEMxNDhEMUY3NjFGOTk0RDgy MUIyNDlDNzEwHhcNMjMwODI3MDEyMjMyWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGVhYTU1OC1hNjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs4+9a5uAoVisQRmIwwySxVN5KM15oVkPZSwrU5R16OrmSVKC1abdPA1eLjyv ESuTv9xij1UywrfhTu1kAE+r62xf8GyKVRWGau8aLw8d7sips6dECCbnd67O2Du/ EToy5dML3LcuB08O88l0vDAm4lg52vVL0hXubYqTGcxbcJzmbamBJ04O76Ml3FYz 5tSay424m/V+RQgPBY4cBBrF4cXxv2u5anU2axdgqY6yTqpzrJ//0+QsM27c5RRq qxGSTvDISXDhkGZQmDVD2J+LVvPyjY5Kwgodo9motLl4iPBdBjY0fi5wr8cRqG2H dGAM+9LV/FGdDQ0+wKGqlyXX6wIDAQABo4IClTCCApEwHQYDVR0OBBYEFF2uhx00 CqMHX6qyKsFwF7Q3MaN/MB8GA1UdIwQYMBaAFJzfjOkL95+MFI0fdh+ZTYIbJJxx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjQ1MC9COTgxNzFEQTUz NDYxMUVDOUI5MEE0N0JDNEY5QUUwMi9uTi1NNlF2M240d1VqUjkySDVsTmdoc2tu SEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25OLU02UXYzbjR3VWpSOTJINWxOZ2hza25IRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUY0NTAvQjk4MTcxREE1MzQ2MTFFQzlCOTBBNDdCQzRGOUFFMDIvRERFMkJCN0M1 MzQ4MTFFQzhGRkJEQjdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJneRwwDQYJKoZIhvcNAQELBQADggEBAFU1VM7TEMAaLKX6 e/84Q/hHsf1ltD2yzpH70QZJXMaVFxTztMeFVzlsKDLG5n48pi15FP4YzC6FcbHO ++ZHc8i/F5+DLhE82g2ILN+kC1rgg/dQGr/WF0Qng1yFc2KIVBy/KGcMxMxQ2E9P WY9ki/F5RIJ5NaMa3UfH3OJJdDwhq8YlFctPnsojSzOJblhzpsYsLbP8FEIhXvAF XQn/h9Uyj9Jb7Urkvb2dFz/JdMes1PtP6Xs9fgFNg458PRa29ZUWTmVjasvFFMT1 J3w0hmQYY+MrsGJfDTs7E6O3nGWhwBMgB0MolZ9C52Ih+W0M8fFipTuqmLXranaX GP7OxS0= -----END CERTIFICATE-----Generated at Fri May 17 03:16:59 2024 by rpki-client on console-fra.rpki-client.org